You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: azure-sql/database/auditing-overview.md
+17-2Lines changed: 17 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ description: SQL Auditing for Azure SQL Database and Azure Synapse Analytics tra
5
5
author: sravanisaluru
6
6
ms.author: srsaluru
7
7
ms.reviewer: wiassaf, vanto, mathoma
8
-
ms.date: 09/16/2024
8
+
ms.date: 03/12/2025
9
9
ms.service: azure-sql-database
10
10
ms.subservice: security
11
11
ms.topic: conceptual
@@ -39,6 +39,21 @@ You can use SQL Database auditing to:
39
39
> [!IMPORTANT]
40
40
> Auditing for Azure SQL Database, Azure Synapse Analytics SQL pools, and Azure SQL Managed Instance is optimized for availability and performance of the database or instance being audited. During periods of very high activity or high network load, the auditing feature might allow transactions to proceed without recording all of the events marked for auditing.
41
41
42
+
## Enhancements to performance, availability, and reliability in server auditing for Azure SQL Database (March 2025)
43
+
44
+
- Re-architected major portions of SQL Auditing resulting in increased availability and reliability of server audits. As an added benefit, there's closer feature alignment with SQL Server and Azure SQL Managed Instance. Database auditing remains unchanged.
45
+
- The previous design of auditing triggers a database level audit and executes one audit session for each database in the server. The new architecture of auditing creates one extended event session at the server level that captures audit events for all databases.
46
+
- The new auditing design optimizes memory and CPU, and is consistent with how auditing works in SQL Server and Azure SQL Managed Instance.
47
+
48
+
### Changes from the re-architecture of server auditing
49
+
50
+
- Folder structure change for storage account:
51
+
- One of the primary changes involves a folder structure change for audit logs stored in storage account containers. Previously, server audit logs were written to separate folders; one for each database, with the database name serving as the folder name. With the new update, all server audit logs will be consolidated into a single folder labeled `master`. This behavior is the same as Azure SQL Managed Instance and SQL Server.
52
+
- Folder structure change for read-only replicas:
53
+
- Read-only database replicas previously had their logs stored in a read-only folder. Those logs will now be written into the `master` folder. You can retrieve these logs by filtering on the new column `is_secondary_replica_true`.
54
+
- Permissions required to view Audit logs :
55
+
-**Control Server** permission is required to view audit logs stored in the `master` folder
56
+
42
57
## Auditing limitations
43
58
44
59
- Enabling auditing on a paused **Azure Synapse SQL pool** isn't supported. To enable auditing, resume the **Synapse SQL pool**.
@@ -65,7 +80,7 @@ You can use SQL Database auditing to:
65
80
66
81
## Related content
67
82
68
-
-[What's New in Azure SQL Auditing](/Shows/Data-Exposed/Whats-New-in-Azure-SQL-Auditing)
83
+
-[What's New in Azure SQL Auditing](/shows/data-exposed/server-audit-redesign-for-azure-sql-database-data-exposed)
69
84
-[Get started with Azure SQL Managed Instance auditing](../managed-instance/auditing-configure.md)
70
85
-[Auditing for SQL Server](/sql/relational-databases/security/auditing/sql-server-audit-database-engine)
71
86
-[Set up Auditing for Azure SQL Database and Azure Synapse Analytics](auditing-setup.md)
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments